Re: [sudo-discuss] If Sudoroom ppl serious re getting an FCC radio license, should start wkly mtgs immediately.
30 Oct
2013
30 Oct
'13
11:03 a.m.
On Wed, Oct 30, 2013 at 9:01 AM, Steve Berl <steveberl(a)gmail.com> wrote:
The spam From: field says "john re
<giovanni-re(a)yandex.com>"
The real emails seem to come from "giovanni_re" <john_re(a)fastmail.us>
The spam emails all came from:
giovanni-re(a)yandex.com
carefullychipped(a)yandex.com
Neither of these had posted to the list before, and both were banned.
A pattern also became clear after yet another new subscriber showed
up, named:
yardena.cohen(a)yandex.com
Creepy! At that point I just decided to ban everything from
yandex.com, which seems to have stopped the problem. There were no
other subscribers from that domain.
30 Oct
30 Oct
11:15 a.m.
New subject: If Sudoroom ppl serious re getting an FCC radio license, should start wkly mtgs immediately.
attack of the clones, from the planet yandex
Oct 30, 2013 11:03:46 AM, yardenack(a)gmail.com wrote:
On Wed, Oct 30, 2013 at 9:01 AM, Steve Berl steveberl(a)gmail.com> wrote:
The spam From:
field says "john re giovanni-re(a)yandex.com>"
The real emails seem to come from "giovanni_re" john_re(a)fastmail.us>
The spam emails all came from:
giovanni-re(a)yandex.com
carefullychipped(a)yandex.com
Neither of these had posted to the list before, and both were banned.
A pattern also became clear after yet another new subscriber showed
up, named:
yardena.cohen(a)yandex.com
Creepy! At that point I just decided to ban everything from
yandex.com, which seems to have stopped the problem. There were no
other subscribers from that domain.
_______________________________________________
sudo-discuss mailing list
sudo-discuss(a)lists.sudoroom.org
http://lists.sudoroom.org/listinfo/sudo-discuss
5:10 p.m.
New subject: If Sudoroom ppl serious re getting an FCC radio license, should start wkly mtgs immediately.
You might not want to ban everyone from yandex.com. It is a huge ISP with
many millions of customers from all over Russia, Ukraine, Belarus, and
Kazakhstan.
It would be equivalent to banning everyone from yahoo.com or similar.
I'd suggest a bit more specific filtering.
-steve
On Wed, Oct 30, 2013 at 11:03 AM, Yardena Cohen <yardenack(a)gmail.com> wrote:
On Wed, Oct 30, 2013 at 9:01 AM, Steve Berl
<steveberl(a)gmail.com> wrote:
--
-steve
The spam From: field says "john re
<giovanni-re(a)yandex.com>"
The real emails seem to come from "giovanni_re" <john_re(a)fastmail.us>
The spam emails all came from:
giovanni-re(a)yandex.com
carefullychipped(a)yandex.com
Neither of these had posted to the list before, and both were banned.
A pattern also became clear after yet another new subscriber showed
up, named:
yardena.cohen(a)yandex.com
Creepy! At that point I just decided to ban everything from
yandex.com, which seems to have stopped the problem. There were no
other subscribers from that domain.
_______________________________________________
sudo-discuss mailing list
sudo-discuss(a)lists.sudoroom.org
http://lists.sudoroom.org/listinfo/sudo-discuss
5:20 p.m.
New subject: SPAM discuss - Re: If Sudoroom ppl serious re getting an FCC radio license, should start wkly mtgs immediately.
Will everyone please change the subject header if you're discissing the
spam?
TIA.
On Wed, Oct 30, 2013, at 05:10 PM, Steve Berl wrote:
You might not want to ban everyone from yandex.com. It
is a huge ISP with
many millions of customers from all over Russia, Ukraine, Belarus, and
Kazakhstan.
It would be equivalent to banning everyone from yahoo.com or similar.
I'd suggest a bit more specific filtering.
-steve
On Wed, Oct 30, 2013 at 11:03 AM, Yardena Cohen <yardenack(a)gmail.com>
wrote:
--- Join the BerkeleyTIP-Global mail list -
http://groups.google.com/group/BerkTIPGlobal. All Freedom SW, HW & Culture.
On Wed, Oct 30, 2013 at 9:01 AM, Steve Berl
<steveberl(a)gmail.com> wrote:
--
-steve
_______________________________________________
sudo-discuss mailing list
sudo-discuss(a)lists.sudoroom.org
http://lists.sudoroom.org/listinfo/sudo-discuss The spam From: field says "john re
<giovanni-re(a)yandex.com>"
The real emails seem to come from "giovanni_re" <john_re(a)fastmail.us>
The spam emails all came from:
giovanni-re(a)yandex.com
carefullychipped(a)yandex.com
Neither of these had posted to the list before, and both were banned.
A pattern also became clear after yet another new subscriber showed
up, named:
yardena.cohen(a)yandex.com
Creepy! At that point I just decided to ban everything from
yandex.com, which seems to have stopped the problem. There were no
other subscribers from that domain.
_______________________________________________
sudo-discuss mailing list
sudo-discuss(a)lists.sudoroom.org
http://lists.sudoroom.org/listinfo/sudo-discuss
8:58 p.m.
New subject: If Sudoroom ppl serious re getting an FCC radio license, should start wkly mtgs immediately.
On Wed, Oct 30, 2013 at 5:10 PM, Steve Berl <steveberl(a)gmail.com> wrote:
You might not want to ban everyone from yandex.com. It
is a huge ISP with
many millions of customers from all over Russia, Ukraine, Belarus, and Kazakhstan.
It would be equivalent to banning everyone from yahoo.com or similar.
I'd suggest a bit more specific filtering.
Ok. but how? Do you have a concrete suggestion?
--
Marc
9:23 p.m.
New subject: SPAM abuse remedies. PLEASE put this at begin your subjct lines, Thx. - Re: If Sudoroom ppl serious re getting an FCC radio license, should start wkly mtgs immediately.
Folks -
Will EVERYONE _PLEASE_ prepend the subject line on the spam replies with
the word SPAM,
so readers know you are talking about the spam, not my original topic?
Thanks.
On Wed, Oct 30, 2013, at 08:58 PM, Marc Juul wrote:
On Wed, Oct 30, 2013 at 5:10 PM, Steve Berl
<steveberl(a)gmail.com> wrote:
--- Join the BerkeleyTIP-Global mail list -
http://groups.google.com/group/BerkTIPGlobal. All Freedom SW, HW & Culture.
You might not want to ban everyone from
yandex.com. It is a huge ISP with
many millions of customers from all over Russia, Ukraine, Belarus, and Kazakhstan.
It would be equivalent to banning everyone from yahoo.com or similar.
I'd suggest a bit more specific filtering.
Ok. but how? Do you have a concrete suggestion?
--
Marc
_______________________________________________
sudo-discuss mailing list
sudo-discuss(a)lists.sudoroom.org
http://lists.sudoroom.org/listinfo/sudo-discuss
31 Oct
31 Oct
10:20 a.m.
New subject: If Sudoroom ppl serious re getting an FCC radio license, should start wkly mtgs immediately.
I'm not familiar with the specific list manager software being used, but
seems like there should be a way that the 2 known bad From: addresses can
be specifically listed.
On Wednesday, October 30, 2013, Marc Juul wrote:
On Wed, Oct 30, 2013 at 5:10 PM, Steve Berl
<steveberl@gmail.com<javascript:_e({}, 'cvml',
'steveberl(a)gmail.com');>
--
-steve
wrote:
You might not want to ban everyone from
yandex.com. It is a huge ISP
with many millions of customers from all over Russia, Ukraine, Belarus, and Kazakhstan.
It would be equivalent to banning everyone from yahoo.com or similar.
I'd suggest a bit more specific filtering.
Ok. but how? Do you have a concrete suggestion?
--
Marc
12:48 p.m.
New subject: If Sudoroom ppl serious re getting an FCC radio license, should start wkly mtgs immediately.
On Thu, Oct 31, 2013 at 10:20 AM, Steve Berl <steveberl(a)gmail.com> wrote:
I'm not familiar with the specific list manager
software being used, but
seems like there should be a way that the 2 known bad From: addresses can
be specifically listed.
It seems that new @yandex.com email addresses were being generated to look
like existing mailing list users and subscribed to the mailing lists.
That's why the complete @yandex.com ban. We'll check to see if the yandex
bots have stopped in a week or two.
On Wednesday, October 30, 2013, Marc Juul wrote:
On Wed, Oct 30, 2013 at 5:10 PM, Steve Berl
<steveberl(a)gmail.com> wrote:
--
-steve
_______________________________________________
sudo-discuss mailing list
sudo-discuss(a)lists.sudoroom.org
http://lists.sudoroom.org/listinfo/sudo-discuss
You might not want to ban everyone from
yandex.com. It is a huge ISP
with many millions of customers from all over Russia, Ukraine, Belarus, and Kazakhstan.
It would be equivalent to banning everyone from yahoo.com or similar.
I'd suggest a bit more specific filtering.
Ok. but how? Do you have a concrete suggestion?
--
Marc
1 Nov
1 Nov
9:21 a.m.
New subject: If Sudoroom ppl serious re getting an FCC radio license, should start wkly mtgs immediately.
I like how the discussion about the spam has spawned many more emails than
the actual spam itself. Bask in the ultimate irony as my comment increases
said spam.
I would suggest installing spamassassin (assassin is such a funny word, it
has so many asses) if you have not already, and have it filtering incoming
mailing list messages. I've done this before, you can set two levels,
things that are very spammy just get binned, things that are maybe
potentially spammy get held for moderation and a list admin can
approve/reject them before they get blasted out to the list.
On Thu, Oct 31, 2013 at 12:48 PM, Marc Juul <juul(a)labitat.dk> wrote:
On Thu, Oct 31, 2013 at 10:20 AM, Steve Berl
<steveberl(a)gmail.com> wrote:
I'm not familiar with the specific list
manager software being used, but
seems like there should be a way that the 2 known bad From: addresses can
be specifically listed.
It seems that new @yandex.com email addresses were being generated to
look like existing mailing list users and subscribed to the mailing lists.
That's why the complete @yandex.com ban. We'll check to see if the yandex
bots have stopped in a week or two.
On Wednesday, October 30, 2013, Marc Juul wrote:
_______________________________________________
sudo-discuss mailing list
sudo-discuss(a)lists.sudoroom.org
http://lists.sudoroom.org/listinfo/sudo-discuss
On Wed, Oct 30, 2013 at 5:10 PM, Steve Berl
<steveberl(a)gmail.com> wrote:
--
-steve
_______________________________________________
sudo-discuss mailing list
sudo-discuss(a)lists.sudoroom.org
http://lists.sudoroom.org/listinfo/sudo-discuss
You might not want to ban everyone from
yandex.com. It is a huge ISP
with many millions of customers from all over Russia, Ukraine, Belarus, and Kazakhstan.
It would be equivalent to banning everyone from yahoo.com or similar.
I'd suggest a bit more specific filtering.
Ok. but how? Do you have a concrete suggestion?
--
Marc
31 Oct
31 Oct
2:38 a.m.
New subject: Yandex: was Re: If Sudoroom ppl serious re getting an FCC radio license, should start wkly mtgs immediately.
The probability of anyone in Russia, Ukraine, Belarus, or Kazakhstan,
becoming an SR member, asymptotically approaches zero. The probability
of spams, scams, spyware, malware, etc. coming from those locations, is
high. The ratio of spam to real correspondence from yandex.com
addresses is presently 1.0 : 0.
That's a lousy risk/benefit ratio. So IMHO ban the hell out of
yandex.com and any other domain that shows itself to be a significant
source of spam etc.
"Open" as in "accepting" does not equal "open" as in
"unprotected." We
are not under any obligation to have no collective immune system.
Species without immune defenses don't even last long enough to become
footnotes in archaeology.
-G
=====
On 13-10-30-Wed 5:10 PM, Steve Berl wrote:
You might not want to ban everyone from yandex.com
<http://yandex.com>. It is a huge ISP with many millions of customers
from all over Russia, Ukraine, Belarus, and Kazakhstan. It would be
equivalent to banning everyone from yahoo.com <http://yahoo.com> or
similar.
I'd suggest a bit more specific filtering.
-steve
On Wed, Oct 30, 2013 at 11:03 AM, Yardena Cohen <yardenack(a)gmail.com
<mailto:yardenack@gmail.com>> wrote:
On Wed, Oct 30, 2013 at 9:01 AM, Steve Berl <steveberl(a)gmail.com
<mailto:steveberl@gmail.com>> wrote:
The spam From: field says "john re
<giovanni-re(a)yandex.com
<mailto:giovanni-re@yandex.com>>"
The real emails seem to come from
"giovanni_re"
<john_re(a)fastmail.us
<mailto:john_re@fastmail.us>>
The spam emails all came from:
giovanni-re(a)yandex.com <mailto:giovanni-re@yandex.com>
carefullychipped(a)yandex.com <mailto:carefullychipped@yandex.com>
Neither of these had posted to the list before, and both were banned.
A pattern also became clear after yet another new subscriber showed
up, named:
yardena.cohen(a)yandex.com <mailto:yardena.cohen@yandex.com>
Creepy! At that point I just decided to ban everything from
yandex.com <http://yandex.com>, which seems to have stopped the
problem. There were no
other subscribers from that domain.
_______________________________________________
sudo-discuss mailing list
sudo-discuss(a)lists.sudoroom.org
<mailto:sudo-discuss@lists.sudoroom.org>
http://lists.sudoroom.org/listinfo/sudo-discuss
--
-steve
_______________________________________________
sudo-discuss mailing list
sudo-discuss(a)lists.sudoroom.org
http://lists.sudoroom.org/listinfo/sudo-discuss 
7:53 a.m.
New subject: Yandex: was Re: If Sudoroom ppl serious re getting an FCC radio license, should start wkly mtgs immediately.
I disagree with this risk/benefit analysis below. The risk of excluding some Russian
programmers (or émigrés) due to this policy is not 0. (Might want to scan our current
membership)
The loss of excluding an enthusiastic Sudo person because of an overbroad ban is
disproportionately high for a place emphasizing openness and inclusion.
I say: Take down the wall!
As a policy, I think it only makes sense to ban an address after it has been demonstrated
that it has abused its privilege. Until then, I think all email addresses should be
considered innocent until proven guilty.
My 2 bitcoins.
(2 is worth a lot these days on the bitcoin market, isn't it?)
sent from eddan.com
On Oct 31, 2013, at 2:38 AM, GtwoG PublicOhOne
<g2g-public01(a)att.net> wrote:
The probability of anyone in Russia, Ukraine, Belarus, or Kazakhstan, becoming an SR
member, asymptotically approaches zero. The probability of spams, scams, spyware,
malware, etc. coming from those locations, is high. The ratio of spam to real
correspondence from yandex.com addresses is presently 1.0 : 0.
That's a lousy risk/benefit ratio. So IMHO ban the hell out of yandex.com and any
other domain that shows itself to be a significant source of spam etc.
"Open" as in "accepting" does not equal "open" as in
"unprotected." We are not under any obligation to have no collective immune
system. Species without immune defenses don't even last long enough to become
footnotes in archaeology.
-G
=====
On 13-10-30-Wed 5:10 PM, Steve Berl wrote:
You might not want to ban everyone from yandex.com. It is a huge ISP with many millions
of customers from all over Russia, Ukraine, Belarus, and Kazakhstan. It would be
equivalent to banning everyone from yahoo.com or similar.
I'd suggest a bit more specific filtering.
-steve
_______________________________________________
sudo-discuss mailing list
sudo-discuss(a)lists.sudoroom.org
http://lists.sudoroom.org/listinfo/sudo-discuss On Wed, Oct 30, 2013 at 11:03 AM, Yardena Cohen
<yardenack(a)gmail.com> wrote:
On Wed, Oct 30, 2013 at 9:01 AM, Steve Berl <steveberl(a)gmail.com> wrote:
--
-steve
_______________________________________________
sudo-discuss mailing list
sudo-discuss(a)lists.sudoroom.org
http://lists.sudoroom.org/listinfo/sudo-discuss The spam From: field says "john re
<giovanni-re(a)yandex.com>"
The real emails seem to come from "giovanni_re" <john_re(a)fastmail.us>
The spam emails all came from:
giovanni-re(a)yandex.com
carefullychipped(a)yandex.com
Neither of these had posted to the list before, and both were banned.
A pattern also became clear after yet another new subscriber showed
up, named:
yardena.cohen(a)yandex.com
Creepy! At that point I just decided to ban everything from
yandex.com, which seems to have stopped the problem. There were no
other subscribers from that domain.
_______________________________________________
sudo-discuss mailing list
sudo-discuss(a)lists.sudoroom.org
http://lists.sudoroom.org/listinfo/sudo-discuss
10:18 a.m.
New subject: Yandex: was Re: If Sudoroom ppl serious re getting an FCC radio license, should start wkly mtgs immediately.
I strongly agree with Eddan. It makes no sense to ban a non-negligible
portion of the worlds population because of 2 known bad email addresses.
Why not try just banning those 2 and see how it goes.
Steve
On Thursday, October 31, 2013, Eddan Katz wrote:
I disagree with this risk/benefit analysis below. The
risk of excluding
some Russian programmers (or émigrés) due to this policy is not 0. (Might
want to scan our current membership)
The loss of excluding an enthusiastic Sudo person because of an overbroad
ban is disproportionately high for a place emphasizing openness and
inclusion.
I say: Take down the wall!
As a policy, I think it only makes sense to ban an address after it has
been demonstrated that it has abused its privilege. Until then, I think all
email addresses should be considered innocent until proven guilty.
My 2 bitcoins.
(2 is worth a lot these days on the bitcoin market, isn't it?)
sent from eddan.com
On Oct 31, 2013, at 2:38 AM, GtwoG PublicOhOne
<g2g-public01@att.net<javascript:_e({}, 'cvml',
'g2g-public01(a)att.net');>>
wrote:
The probability of anyone in Russia, Ukraine, Belarus, or Kazakhstan,
becoming an SR member, asymptotically approaches zero. The probability of
spams, scams, spyware, malware, etc. coming from those locations, is high.
The ratio of spam to real correspondence from yandex.com addresses is
presently 1.0 : 0.
That's a lousy risk/benefit ratio. So IMHO ban the hell out of yandex.comand any
other domain that shows itself to be a significant source of spam
etc.
"Open" as in "accepting" does not equal "open" as in
"unprotected." We
are not under any obligation to have no collective immune system. Species
without immune defenses don't even last long enough to become footnotes in
archaeology.
-G
=====
On 13-10-30-Wed 5:10 PM, Steve Berl wrote:
You might not want to ban everyone from yandex.com. It is a huge ISP with
many millions of customers from all over Russia, Ukraine, Belarus, and Kazakhstan.
It would be equivalent to banning everyone from yahoo.com or similar.
I'd suggest a bit more specific filtering.
-steve
On Wed, Oct 30, 2013 at 11:03 AM, Yardena Cohen
<yardenack@gmail.com<javascript:_e({}, 'cvml',
'yardenack(a)gmail.com');>
--
-steve
wrote:
On Wed, Oct 30, 2013 at 9:01 AM, Steve Berl
<steveberl@gmail.com<javascript:_e({}, 'cvml',
'steveberl(a)gmail.com');>>
wrote:
--
-steve
_______________________________________________
sudo-discuss mailing listsudo-discuss(a)lists.sudoroom.org <javascript:_e({},
'cvml',
'sudo-discuss@lists.sudoroom.org');>http://lists.sudoroom.org/listinfo/sudo-discuss
_______________________________________________
sudo-discuss mailing list
sudo-discuss(a)lists.sudoroom.org <javascript:_e({}, 'cvml',
'sudo-discuss(a)lists.sudoroom.org');>
http://lists.sudoroom.org/listinfo/sudo-discuss
The spam From: field says "john re
<giovanni-re@yandex.com<javascript:_e({}, 'cvml',
'giovanni-re(a)yandex.com');>
"
The real emails seem to come from "giovanni_re"
<john_re@fastmail.us<javascript:_e({}, 'cvml',
'john_re(a)fastmail.us');>
The spam emails all came from:
giovanni-re(a)yandex.com <javascript:_e({}, 'cvml',
'giovanni-re(a)yandex.com');>
carefullychipped(a)yandex.com <javascript:_e({}, 'cvml',
'carefullychipped(a)yandex.com');>
Neither of these had posted to the list before, and both were banned.
A pattern also became clear after yet another new subscriber showed
up, named:
yardena.cohen(a)yandex.com <javascript:_e({}, 'cvml',
'yardena.cohen(a)yandex.com');>
Creepy! At that point I just decided to ban everything from
yandex.com, which seems to have stopped the problem. There were no
other subscribers from that domain.
_______________________________________________
sudo-discuss mailing list
sudo-discuss(a)lists.sudoroom.org <javascript:_e({}, 'cvml',
'sudo-discuss(a)lists.sudoroom.org');>
http://lists.sudoroom.org/listinfo/sudo-discuss
4068
days inactive
4070
days old
11 comments
8 participants
participants (8)
-
David Rorex -
Eddan Katz -
giovanni_re -
GtwoG PublicOhOne -
Hol Gaskill -
Marc Juul -
Steve Berl -
Yardena Cohen